fix(sdk): Sets schemaVersion, not tdf_spec_version (#414)

* fix(cli): Lets allowedKases default to kasEndpoint
* fix(sdk): Prefer using schemaVersion

The latest spec (4.3.0) consolidates on a single `schemaVersion` field in the manifest, instead of `tdf_spec_version` and/or independent versions for policy and kao objects

cli/src/cli.ts

@@ -536,7 +536,11 @@ export const handleArgs = (args: string[]) => {
         },
         async (argv) => {
           log('DEBUG', 'Running decrypt command');
-          const allowedKases = argv.allowList?.split(',');
+          let allowedKases = argv.allowList?.split(',');
+          if (!allowedKases) {
+            allowedKases = argv.kasEndpoint ? [argv.kasEndpoint] : [];
+          }
+          log('DEBUG', `Allowed KASes: ${allowedKases}`);
           const ignoreAllowList = !!argv.ignoreAllowList;
           const authProvider = await processAuth(argv);
           log('DEBUG', `Initialized auth provider ${JSON.stringify(authProvider)}`);

lib/src/opentdf.ts

@@ -209,7 +209,7 @@ export class RewrapCache {
   }
 
   close() {
-    if (this.closer) {
+    if (this.closer !== undefined) {
       clearInterval(this.closer);
       delete this.closer;
       delete this.cache;

lib/src/tdf/AttributeObject.ts

@@ -7,8 +7,6 @@ export interface AttributeObject {
   /** PEM encoded public key */
   readonly pubKey: string;
   readonly kasUrl: string;
-  /** The most recent version 1.1.0. */
-  readonly schemaVersion?: string;
 }
 
 export async function createAttribute(
@@ -22,6 +20,5 @@ export async function createAttribute(
     displayName: '',
     pubKey: pubKey.publicKey,
     kasUrl,
-    schemaVersion: '1.1.0',
   };
 }

lib/src/tdf/Policy.ts

@@ -7,7 +7,6 @@ export class Policy {
   private uuidStr = uuid();
   private dataAttributesList: AttributeObject[] = [];
   private dissemList: string[] = [];
-  // private schemaVersionStr = Policy.CURRENT_VERSION;
 
   /**
    * Adds a group of entities, to the Policy's dissem list

lib/src/tdf/PolicyObject.ts

@@ -8,5 +8,4 @@ export interface PolicyObjectBody {
 export interface PolicyObject {
   readonly uuid: string;
   readonly body: PolicyObjectBody;
-  readonly schemaVersion?: string;
 }

lib/tdf3/src/models/manifest.ts

@@ -6,5 +6,7 @@ export type Manifest = {
   payload: Payload;
   encryptionInformation: EncryptionInformation;
   assertions: Assertion[];
-  tdf_spec_version: string;
+  schemaVersion: string;
+  // Deprecated
+  tdf_spec_version?: string;
 };

lib/tdf3/src/models/policy.ts

@@ -9,7 +9,6 @@ export type PolicyBody = {
 };
 
 export type Policy = {
-  tdf_spec_version?: string;
   uuid?: string;
   body?: PolicyBody;
 };

lib/tdf3/src/tdf.ts

@@ -261,7 +261,6 @@ async function _generateManifest(
     url: '0.payload',
     protocol: 'zip',
     isEncrypted: true,
-    schemaVersion: '3.0.0',
     ...(mimeType && { mimeType }),
   };
 
@@ -272,7 +271,7 @@ async function _generateManifest(
     // generate the manifest first, then insert integrity information into it
     encryptionInformation: encryptionInformationStr,
     assertions: assertions,
-    tdf_spec_version: tdfSpecVersion,
+    schemaVersion: tdfSpecVersion,
   };
 }
 
@@ -887,7 +886,8 @@ export async function readStream(cfg: DecryptConfiguration) {
   const encryptedSegmentSizeDefault = defaultSegmentSize || DEFAULT_SEGMENT_SIZE;
 
   // check if the TDF is a legacy TDF
-  const isLegacyTDF = !manifest.tdf_spec_version;
+  const specVersion = manifest.schemaVersion || manifest.tdf_spec_version;
+  const isLegacyTDF = !specVersion || specVersion.startsWith('3.');
 
   // Decode each hash and store it in an array of Uint8Array
   const segmentHashList = segments.map(